$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/83c3c4a9-7960-4c3c-b720-6247e5c54fc1.roa File: 83c3c4a9-7960-4c3c-b720-6247e5c54fc1.roa (raw, json) Hash identifier: IGTpX7a4xDehIN/9mgDIUg029LI6jUh3jiYrF0rUf4o= Subject key identifier: 01:B0:55:3C:8E:5A:20:A3:9A:8D:E2:C0:AB:F2:6D:8C:6A:13:E7:78 Certificate issuer: /CN=A91F635F0000/serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Certificate serial: 615C74A432AAE8164413235128485D1B287BA325 Authority key identifier: 40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/83c3c4a9-7960-4c3c-b720-6247e5c54fc1.roa Signing time: Sat 02 May 2026 00:10:23 +0000 ROA not before: Sat 02 May 2026 00:10:23 +0000 ROA not after: Fri 31 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2406:daf3:f0c0::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/dc5cb86a-b72d-4eca-b351-c500ace28c65.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 07 May 2026 00:00:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:5c:74:a4:32:aa:e8:16:44:13:23:51:28:48:5d:1b:28:7b:a3:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91F635F0000, serialNumber=4076825524D2C66D2E10436FE65E93E8C1BD4A37 Validity Not Before: May 2 00:10:23 2026 GMT Not After : Jul 31 23:59:59 2026 GMT Subject: serialNumber=618df5b2fafa40a753dcb8bfdd9054fa4c7c90ec6d3b8ca6d39a5428826c9e67, CN=c0bf0fe8-717c-4f72-9b45-c9c519132a81 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e7:c5:7e:14:b5:2d:1d:ea:3d:9e:93:f8:a2: a7:a5:78:07:58:65:a0:96:4d:57:92:9c:b6:51:4e: 33:81:92:52:da:65:33:71:5f:82:b1:1c:d6:ed:c4: 92:82:c1:1d:f1:7c:c8:2c:91:ea:f9:6e:fc:da:4e: fd:d2:71:57:fc:2b:08:a6:f8:ff:f3:6a:a3:80:74: 9d:a7:f5:14:09:f7:00:78:5b:c7:ec:2b:20:1a:67: 99:3d:45:31:38:63:82:ee:c3:ac:83:df:3d:69:4f: b4:0c:b6:ab:86:d7:7e:a4:9f:0a:00:07:b7:66:57: b0:5a:dd:fa:09:72:43:51:f9:38:72:04:d0:24:7a: 23:62:5d:91:ea:89:56:d5:3d:0b:6c:c4:9c:44:c5: bf:6d:d2:03:df:2e:e1:e3:7f:8e:97:ae:9d:fb:cb: ed:3f:59:0c:00:02:7c:62:90:02:d7:4c:6b:1d:67: e5:7f:c8:c7:80:7b:d5:2e:15:13:25:12:d6:f9:68: 5c:61:b6:a9:40:aa:9c:2f:e3:08:60:80:7c:aa:90: b6:1c:3b:7a:b2:b9:97:1c:f4:31:7e:6c:6b:fa:ae: e6:70:fa:25:43:fb:03:d6:89:99:5e:a3:d3:75:4e: 1a:8c:04:fb:40:31:4d:e4:38:8c:f6:cd:24:1b:bf: 66:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:B0:55:3C:8E:5A:20:A3:9A:8D:E2:C0:AB:F2:6D:8C:6A:13:E7:78 X509v3 Authority Key Identifier: keyid:40:76:82:55:24:D2:C6:6D:2E:10:43:6F:E6:5E:93:E8:C1:BD:4A:37 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QHaCVSTSxm0uEENv5l6T6MG9Sjc.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/83c3c4a9-7960-4c3c-b720-6247e5c54fc1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/08c2f264-23f9-49fb-9d43-f8b50bec9261/7ba17863-a613-4197-9ed5-beda6a89869f.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2406:daf3:f0c0::/46 Signature Algorithm: sha256WithRSAEncryption 2f:8f:d2:5c:16:1a:5a:4b:83:34:b6:43:ea:cf:97:53:86:31: f4:ad:2b:c7:d1:fd:58:d4:b7:16:69:0f:76:c0:c3:a8:01:e5: f0:da:de:dc:00:80:d0:bd:83:f7:57:1a:5a:0c:b1:d4:33:22: 1f:07:09:a2:54:40:b2:14:9a:2e:1d:2b:b7:ce:70:0a:9b:9f: d6:6f:55:20:f2:10:84:95:c1:06:c7:3b:28:da:c6:ff:75:93: 99:1d:3c:69:ec:f1:99:eb:9d:5f:28:6b:a0:61:07:93:05:c8: 50:10:51:20:d7:8a:2b:fe:05:8d:8d:d1:2c:e6:ce:36:0b:f3: 66:70:ac:15:8f:ee:7d:62:5c:9d:52:17:34:a0:60:2b:c2:1d: 17:54:34:27:1f:34:e7:94:05:d6:7c:12:f2:99:28:12:10:cd: 5b:fe:dd:3c:be:fd:76:58:12:24:54:2b:ad:8c:f8:b8:8b:73: 49:aa:a6:a5:0e:dc:53:e3:74:ca:3e:c0:b1:76:11:83:08:22: c6:b0:18:b0:ce:47:0d:c2:db:bf:33:31:09:fe:db:87:1e:a4: 02:83:be:18:0d:d0:de:db:31:59:6a:55:b3:ad:46:e0:e6:a6: ac:2f:84:0b:da:c2:8c:21:12:c2:3c:6f:e2:b6:b4:7f:78:28: 8e:41:ae:64 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgIUYVx0pDKq6BZEEyNRKEhdGyh7oyUwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAxMMQTkxRjYzNUYwMDAwMTEwLwYDVQQFEyg0MDc2ODI1NTI0 RDJDNjZEMkUxMDQzNkZFNjVFOTNFOEMxQkQ0QTM3MB4XDTI2MDUwMjAwMTAyM1oX DTI2MDczMTIzNTk1OVowejFJMEcGA1UEBRNANjE4ZGY1YjJmYWZhNDBhNzUzZGNi OGJmZGQ5MDU0ZmE0YzdjOTBlYzZkM2I4Y2E2ZDM5YTU0Mjg4MjZjOWU2NzEtMCsG A1UEAxMkYzBiZjBmZTgtNzE3Yy00ZjcyLTliNDUtYzljNTE5MTMyYTgxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtufFfhS1LR3qPZ6T+KKnpXgHWGWg lk1Xkpy2UU4zgZJS2mUzcV+CsRzW7cSSgsEd8XzILJHq+W782k790nFX/CsIpvj/ 82qjgHSdp/UUCfcAeFvH7CsgGmeZPUUxOGOC7sOsg989aU+0DLarhtd+pJ8KAAe3 ZlewWt36CXJDUfk4cgTQJHojYl2R6olW1T0LbMScRMW/bdID3y7h43+Ol66d+8vt P1kMAAJ8YpAC10xrHWflf8jHgHvVLhUTJRLW+WhcYbapQKqcL+MIYIB8qpC2HDt6 srmXHPQxfmxr+q7mcPolQ/sD1omZXqPTdU4ajAT7QDFN5DiM9s0kG79mgQIDAQAB o4ICSzCCAkcwHQYDVR0OBBYEFAGwVTyOWiCjmo3iwKvybYxqE+d4MB8GA1UdIwQY MBaAFEB2glUk0sZtLhBDb+Zek+jBvUo3MA4GA1UdDwEB/wQEAwIHgDB+BggrBgEF BQcBAQRyMHAwbgYIKwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVw b3NpdG9yeS9CNTI3RUY1ODFENjYxMUUyQkI0NjhGN0M3MkZEMUZGMi9RSGFDVlNU U3htMHVFRU52NWw2VDZNRzlTamMuY2VyMIGeBggrBgEFBQcBCwSBkTCBjjCBiwYI KwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIuYW1hem9uYXdz LmNvbS92b2x1bWUvMDhjMmYyNjQtMjNmOS00OWZiLTlkNDMtZjhiNTBiZWM5MjYx LzgzYzNjNGE5LTc5NjAtNGMzYy1iNzIwLTYyNDdlNWM1NGZjMS5yb2EwgZUGA1Ud HwSBjTCBijCBh6CBhKCBgYZ/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8wOGMyZjI2NC0yM2Y5LTQ5ZmItOWQ0My1mOGI1 MGJlYzkyNjEvN2JhMTc4NjMtYTYxMy00MTk3LTllZDUtYmVkYTZhODk4NjlmLmNy bDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUFBwEHAQH/BBMwETAP BAIAAjAJAwcCJAba8/DAMA0GCSqGSIb3DQEBCwUAA4IBAQAvj9JcFhpaS4M0tkPq z5dThjH0rSvH0f1Y1LcWaQ92wMOoAeXw2t7cAIDQvYP3VxpaDLHUMyIfBwmiVECy FJouHSu3znAKm5/Wb1Ug8hCElcEGxzso2sb/dZOZHTxp7PGZ651fKGugYQeTBchQ EFEg14or/gWNjdEs5s42C/NmcKwVj+59YlydUhc0oGArwh0XVDQnHzTnlAXWfBLy mSgSEM1b/t08vv12WBIkVCutjPi4i3NJqqalDtxT43TKPsCxdhGDCCLGsBiwzkcN wtu/MzEJ/tuHHqQCg74YDdDe2zFZalWzrUbg5qasL4QL2sKMIRLCPG/itrR/eCiO Qa5k -----END CERTIFICATE-----Generated at Sun May 3 16:59:21 2026 by rpki-client